JP2017503405A - Method, switch and controller for processing address resolution protocol messages - Google Patents

Abstract

The present invention discloses a method, switch and controller for processing address resolution protocol messages. The method includes a step of responding to the ARP message by the switch and receiving a flow rule transmitted from the controller, and a step of configuring the ARP message according to the received flow rule and transmitting the ARP message by the switch. The flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. According to the present invention, an ARP mechanism-based interaction with an external device can be performed.

Description

  The present invention relates to the field of communication technology, and in particular, to a method, switch and controller for processing Address Resolution Protocol (ARP) messages.

  The OpenFlow protocol is a typical technology in software-defined networking (SDN). The network elements in the OpenFlow protocol include a controller (OpenFlow Controller, OF Controller) and a switch (OpenFlow Switch, OF Switch). The controller is responsible for determining the forwarding action for the service flow according to the packet characteristics and supplying the corresponding flow rules to the switch. The switch obtains and stores the flow rule and performs the corresponding action on the next packet that matches the flow rule, thereby performing packet forwarding or processing. The flow rule includes flow matching information and a processing action set executed in response thereto. The switch stores all flow matching information and action sets, installs the flow matching information and action sets in the corresponding flow table, and when a user packet arrives, the switch performs flow table matching, In order to process the user packet, a corresponding operation is executed according to the matching result of the flow table matching.

  ARP is a link layer protocol and supports the IP address and media access control (MAC) address of a network device to correspond to the IP address and MAC address of another network device. An ARP request message carrying the destination IP address is sent to obtain an address resolution protocol response message carrying the destination MAC address, so that the network device acquires the MAC address of the communication peer.

  However, in the prior art, a switch based on the OpenFlow model is a layer 2 switch device (Switch), and the layer 2 switch does not have the ability to process the ARP message. Thus, the switch cannot perform ARP mechanism based interaction with external devices connected to the switch.

  Embodiments of the present invention provide a method, switch, and controller for processing ARP messages in order to solve the problem in the prior art that a switch based on the OpenFlow model cannot process ARP messages.

  In order to solve the above technical problems, the embodiments of the present invention disclose the following technical solutions.

  According to a first aspect, the present invention is a method for processing an address resolution protocol message, wherein a switch responds to an ARP message and receives a flow rule transmitted from a controller; Configuring an ARP message according to the received flow rule by the switch and transmitting the ARP message, the flow rule including a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. A method for processing an address resolution protocol message.

  In the first possible implementation method of the first aspect, the flow rule includes an ARP response flow rule. In the ARP response flow rule, the matching rule corresponding to the ARP message is: The action set corresponding to the ARP message is a step of constructing an ARP response message, wherein the requested address includes information that the requested address is an IP address bound to a switch port. The medium access control (MAC) address of the message is a MAC address corresponding to the requested IP address in the received ARP request message, and accordingly, by the switch, The step of constructing an ARP message according to the received flow rule and transmitting the ARP message is transmitted in the ARP request message by receiving the ARP request message transmitted from an external device by the switch. Matching between the information and the matching rule in the ARP response flow rule, and if the matching is successful, constructing an ARP response message according to the action set in the ARP response flow rule and receiving the The MAC address corresponding to the IP address requested in the ARP request message is entered in the ARP response message, and then the input port of the ARP request packet is entered. Specifically and transferring the ARP response message by using a preparative.

  In a second possible implementation method of the first aspect, the flow rule includes a first ARP request flow rule, and in the first ARP request flow rule, the matching rule corresponding to the ARP message is: The packet type is an IP packet and the destination IP address is a pre-configured IP address, and the action set corresponding to the ARP message is a step of configuring a first ARP request message. A destination IP address in the first ARP request message is the preset IP address and a forwarding port number is a forwarding port number or all forwarding port numbers, Accordingly, the switch The step of constructing an ARP message according to the received flow rule and transmitting the ARP message includes the step of receiving a user packet by the switch, and a MAC address corresponding to a destination IP address of the packet is If it detects that it does not exist, a match is performed between the information about the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, the first ARP request Configuring a first ARP request message according to the action set in a flow rule, wherein a destination IP address in the first ARP request message is the preset IP address and set By using a transfer port or all the transfer ports specifically and transmitting the first ARP request message.

  In connection with the second possible implementation method of the first aspect, in the third possible implementation method of the first aspect, in the first ARP request flow rule, the matching rule corresponding to the ARP message Further includes the following information that the mask has a first mask value, and correspondingly matches between the information about the user packet and the matching rule in the first ARP request flow rule: The step of determining whether the user packet is an IP packet and, if a positive result, a result of a predetermined operation on the destination IP address and the first mask value in the user packet; Is the predetermined IP address for the preset IP address and the first mask value. Determine whether the same as the result of the work, and if they are the same, specifically including the steps regarded as the matching is successful.

  In connection with the second possible implementation method of the first aspect or the third possible implementation method of the first aspect, in the fourth possible implementation method of the first aspect, the flow rule is the second In the second ARP request flow rule, the matching rule corresponding to the ARP message is that the packet type has no MAC address corresponding to the IP address as described below. And the action set corresponding to the ARP message includes a step of forwarding to the controller, and accordingly, between the information about the user packet and the matching rule in the first ARP request flow rule. After the matching is done and the matching fails, The method includes matching by the switch between the information about the received user packet and the matching rule in the second ARP request flow rule, and if the matching is successful, Forwarding the user packet to the controller in accordance with the action set in the second ARP request flow rule; receiving a third ARP request flow rule supplied by the controller; and the third ARP request. Further comprising: constructing a second ARP request message according to a flow rule; and transmitting the second ARP request message. In the third ARP request flow rule, In the matching rule corresponding to the sage, the cause value of matching is that the MAC address corresponding to the first IP address does not exist, the packet type is an IP packet, and the destination IP address is the first IP address. The action set corresponding to the ARP message is a step of constructing a second ARP request message, wherein the destination IP address in the second ARP request message is the first IP address. And a transfer port number for which a transfer port number is set or all transfer port numbers.

  In connection with the second possible implementation of the first aspect, the third possible implementation of the first aspect or the fourth possible implementation of the first aspect, the fifth of the first aspect. In the possible implementation method, after the step of transmitting the ARP request message, the method receives an ARP response message transmitted from an external device by the switch, and an ARP encapsulation flow according to the ARP response message. Configure a rule, receive a data packet on the connection where the user packet is placed, match between the information about the data packet and the matching rule in the ARP encapsulation flow rule, and if the matching succeeds Then, the destination MAC address of the ARP response message is set to the ARP capsule. Encapsulating the data packet in accordance with an action set in a flow rule, and then transmitting the encapsulated data packet, wherein the matching rule corresponding to the ARP message in the ARP encapsulated flow rule is: The packet type is an IP packet, and the destination IP address is a destination IP address in the user packet. The action set corresponding to the ARP message further includes a destination MAC address of the packet. The destination MAC address is the destination MAC address of the ARP response message, and the step of forwarding the packet, the forwarding port No. is the input port number of the ARP response message, and a step.

  1st aspect, 1st possible implementation method of 1st aspect, 2nd possible implementation method of 1st aspect, 3rd possible implementation method of 1st aspect, or 1st aspect of 1st aspect In connection with the four possible implementation methods, in the sixth possible implementation method of the first aspect, the step of responding to the ARP message and receiving the flow rule transmitted from the controller by the switch comprises: Specifically, a step of receiving one flow rule transmission OpenFlow message transmitted from the controller by the switch, wherein the one OpenFlow message conveys a plurality of flow rules.

  According to a second aspect, the present invention is a switch, which is configured to respond to an ARP message, receive a flow rule transmitted from a controller, and transmit the flow rule to an ARP processing unit. Constructing an ARP message according to the received flow rule with the receiving unit and transmitting the ARP message, wherein the flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message; The ARP processing unit configured as described above is provided.

  In the first possible implementation method of the second aspect, the ARP processing unit includes a first processing subunit, the receiving unit receives an ARP request message transmitted from an external device, and receives the ARP request. Further configured to send a message to the first processing subunit, wherein the first processing subunit parses an ARP response flow rule included in the received flow rule, and the ARP request message. Is received between the information conveyed in the ARP request message and the matching rule in the ARP response flow rule, and if the matching is successful, the information in the ARP response flow rule A according to the action set By constructing a P response message, filling in the ARP response message with the MAC address corresponding to the IP address requested in the received ARP request message, and then using the input port of the ARP request packet, the ARP response In the ARP response flow rule, the matching rule corresponding to the ARP message is as follows, the message type is an ARP message, and the requested address is bound to the switch port. The action set corresponding to the ARP message includes information indicating that it is an IP address, and is a step of constructing an ARP response message, wherein the ARP response message A medium access control (MAC) address is a MAC address corresponding to the IP address requested in the received ARP request message, and a step of transferring the ARP response message, wherein the transfer port number is the ARP request A step which is an input port number of the packet.

  In a second possible method of implementation of the second aspect, the ARP processing unit includes a second processing subunit, the receiving unit receives a user packet, and the user packet is transmitted to the second processing sub-unit. Further configured to forward to a unit, wherein the second processing subunit parses a first ARP request flow rule included in the received flow rule, and after the user packet is received If it is detected that there is no MAC address corresponding to the destination IP address of the packet, a match is performed between the information about the user packet and the matching rule in the first ARP request flow rule; If the match is successful, the first ARP request flow rule Constructing a first ARP request message according to the action set, wherein the destination IP address in the first ARP request message is a pre-configured IP address, and the configured forwarding port or all forwarding ports When used, the first ARP request message is configured to be transmitted. In the first ARP request flow rule, the matching rule corresponding to the ARP message is the following, and the packet type is an IP packet: And the destination IP address is information that is the preset IP address, and the action set corresponding to the ARP message is a step of constructing a first ARP request message, the first ARP request message comprising: ARP request With the destination IP address is the preset IP address in the preparative message, a forwarding port number is configured forwarding port number or all of the transfer port number, comprising the steps.

  In connection with the second possible implementation method of the second aspect, in the third possible implementation method of the second aspect, in the first ARP request flow rule, the matching rule corresponding to the ARP message However, the following further includes information that the mask has a first mask value, and accordingly, matching is performed between the information regarding the user packet and the matching rule in the first ARP request flow rule. The step of determining whether the user packet is an IP packet and, if a positive result, a result of a predetermined operation on the destination IP address and the first mask value in the user packet; Is the predetermined IP address for the preset IP address and the first mask value. Determine whether the same as the result of the work, and if they are the same, specifically including the steps regarded as the matching is successful.

  In connection with the second possible implementation method of the second aspect or the third possible implementation method of the second aspect, in the fourth possible implementation method of the second aspect, the second processing sub The unit analyzes the second ARP request flow rule included in the flow rule, the matching is performed on the matching rule in the first ARP request flow rule according to the user packet, and the matching is performed. After failure, further matching is performed between the information about the received user packet and the matching rule in the second ARP request flow rule, and if the matching is successful, the user packet is The control according to the action set in the second ARP request flow rule And receiving the third ARP request flow rule supplied by the controller and including a second ARP request message according to the third ARP request flow rule. And further configured to transmit the second ARP request message. In the second ARP request flow rule, the matching rule corresponding to the ARP message is as follows, and the packet type corresponds to an IP address: And the action set corresponding to the ARP message includes a step of transferring to the controller.

  In connection with the second possible implementation of the second aspect, the third possible implementation of the second aspect or the fourth possible implementation of the second aspect, the fifth of the second aspect. In the possible implementation method, the switch further includes a configuration unit, and the reception unit receives an ARP response message transmitted from an external device, transmits the ARP response message to the configuration unit, and transmits the user packet. Is further configured to receive a data packet on a connection on which is located, and to send the data packet to the second processing subunit, wherein the constituent unit is ARP encapsulated according to the received ARP response message The second processing subunit is configured to configure a flow rule, and the second processing subunit relates to the received data packet. And the matching rule in the ARP encapsulation flow rule configured by the configuration unit, and after the matching is successful, the destination MAC address of the ARP response message is changed to the ARP encapsulation flow rule. And encapsulating the data packet in accordance with the action set in FIG. 1, and then transmitting the encapsulated data packet, wherein, in the ARP encapsulation flow rule, the matching rule corresponding to the ARP message is: The action set corresponding to the ARP message, further configured to include information that is an IP packet and the destination IP address is a destination IP address in the user packet Encapsulating the destination MAC address of the packet, wherein the destination MAC address is the destination MAC address of the ARP response message, and forwarding the packet, wherein the transfer port number is the And an input port number of the ARP response message.

  According to a third aspect, the present invention is a controller, which creates a flow rule corresponding to the ARP message and outputs the flow rule to a transmission unit, wherein the flow rule is added to the ARP message. A controller comprising: a creation unit configured to include a corresponding matching rule and an action set corresponding to the ARP message; and the transmission unit configured to transmit the received flow rule to a switch. I will provide a.

  In the first possible implementation method of the third aspect, the creation unit is specifically configured to create an ARP response flow rule, wherein the matching rule corresponding to the ARP message in the ARP response flow rule. Includes information that the message type is an ARP message and the requested address is an IP address bound to a switch port, and the action set corresponding to the ARP message constitutes an ARP response message. The medium access control (MAC) address of the ARP response message is a MAC address corresponding to the IP address requested in the received ARP request message, and the ARP response Comprising the steps of transferring a scan message forwarding port number is the input port number of ARP request packet, and a step.

  In a second possible implementation method of the third aspect, the creation unit is specifically configured to create a first ARP request flow rule, wherein in the first ARP request flow rule, the ARP message The matching rule corresponding to the following includes the information that the packet type is an IP packet and the destination IP address is a preset IP address, and the action set corresponding to the ARP message is the first A destination port address in the first ARP request message is the preset IP address and a forwarding port number in which a forwarding port number is set or all forwarding A step that is a port number.

  In connection with the second possible implementation manner of the third aspect, in the third possible implementation manner of the third aspect, the creation unit is further configured to create a second ARP request flow rule In the second ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is that the MAC address corresponding to the IP address does not exist, and the ARP The action set corresponding to the message includes forwarding to the controller.

  In connection with the third possible implementation manner of the third aspect, in the fourth possible implementation manner of the third aspect, the creation unit is transmitted from the switch according to the second ARP request flow rule. And further creating a third ARP request flow rule, wherein in the third ARP request flow rule, the matching rule corresponding to the ARP message is: Includes the information that the MAC address corresponding to the first IP address does not exist, the packet type is an IP packet, and the destination IP address is the first IP address, and the ARP The action set corresponding to the message is the second ARP request. A destination IP address in the second ARP request message is the first IP address, and a forwarding port number or all forwarding port numbers in which forwarding port numbers are set. , Including steps.

  According to the method, switch and controller for processing an ARP message provided in the present invention, the switch can receive the flow rule corresponding to the ARP message and transmitted from the controller, Including a matching rule corresponding to the ARP message and an action set corresponding to the ARP message, the switch can construct the ARP message according to the received flow rule and transmit the ARP message. Thus, an ARP mechanism based interaction with an external device is performed.

  In order to more clearly describe the technical solutions in the embodiments of the present invention or in the prior art, the following briefly describes the accompanying drawings required for describing the embodiments or the prior art. Apparently, the accompanying drawings in the following description represent several embodiments of the present invention, and those skilled in the art can derive still other drawings from these accompanying drawings without creative efforts.

It is a flowchart of the process performed by the switch in order to implement the process of an ARP message by Example 1 of this invention. It is a flowchart of the process performed by the switch in order to implement the process of the ARP response message by Example 1-1 of this invention. It is a flowchart of the process performed by the switch in order to implement the process of an ARP request message based on the flow rule 2 by Example 1-2 of this invention. It is a flowchart of the process performed by the switch in order to implement the process of an ARP request message based on the flow rules 2-4 according to Example 1-3 of this invention. It is a flowchart of the process performed by the controller in order to implement the process of the ARP message by Example 2 of this invention. FIG. 10 is a flowchart in which a controller and a switch work together to perform processing of an ARP response message according to Embodiment 3 of the present invention. FIG. 10 is another flowchart in which a controller and a switch work together to perform processing of an ARP response message according to Embodiment 4 of the present invention. FIG. 10 is a flowchart in which a controller and a switch work together to perform processing of an ARP request message based on a flow rule 2 according to Embodiment 5 of the present invention. 7 is a flowchart in which a controller and a switch work together to perform processing of an ARP request message based on flow rules 2 to 4 according to Embodiment 6 of the present invention. FIG. 10 is a schematic structural diagram of a controller according to Embodiment 7 of the present invention; FIG. 10 is another schematic structural diagram of a controller according to Embodiment 7 of the present invention; FIG. 10 is a schematic structural diagram of a switch according to Embodiment 8 of the present invention; FIG. 10 is another schematic structural diagram of a switch according to Embodiment 8 of the present invention; FIG. 10 is a schematic structural diagram of a switch according to Embodiment 9 of the present invention; FIG. 10 is a schematic structural diagram of a controller according to Embodiment 10 of the present invention;

In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the following describes the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Be clear. Apparently, the described embodiments are a part rather than all of the embodiments of the present invention. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts shall fall within the protection scope of the present invention.
[Example 1]

  This embodiment provides a method for implementing ARP message processing on the switch side. Referring to FIG. 1, the method includes the following steps.

  Step 101: The switch receives a flow rule corresponding to the ARP message and transmitted from the controller, where each flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message.

  Step 102: The switch constructs an ARP message according to the received flow rule and sends the ARP message.

  According to the method for processing an ARP message provided in this embodiment of the present invention, the switch can receive the flow rule transmitted from the controller in response to the ARP message, Including a matching rule corresponding to the ARP message and an action set corresponding to the ARP message, the switch can construct the ARP message according to the received flow rule and transmit the ARP message. Thus, an ARP mechanism based interaction with an external device is performed.

Based on the different flow rules transmitted from the controller and received by the switch, each switch executes a corresponding processing process. For convenience of description, the following provides a detailed description separately in the four examples.
[Example 1-1]

  In this embodiment, the processing by the switch when the flow rule received by the switch includes the following flow rule 1, that is, the ARP response flow rule will be described.

  Flow rule 1: ARP response flow rule

  In this ARP response flow rule, the matching rule corresponding to the ARP message includes the following information in which the message type is an ARP message and the requested address is an IP address bound to the switch port. The action set corresponding to is a step of constructing an ARP response message, and the medium access control (MAC) address of the ARP response message is a MAC address corresponding to the IP address requested in the received ARP request message. Includes steps. Optionally, the MAC address corresponding to the requested IP address in the received ARP request message is entered as the medium access control (MAC) address of the ARP response message. The action set corresponding to the ARP message is not limited to the above-described content in the feasible embodiment, for example. The action set corresponding to the ARP message is a step of transferring the ARP response message, and the transfer port number is the ARP request. It may further include a step that is an input port number of the packet.

  The ARP response flow rule is used to instruct the switch how to process the ARP response message. As a result, when the external device uses the switch as the destination receiving party of the ARP request message, the switch Can configure the ARP response message to send the MAC address of the switch to the external device.

  Step 102 includes a step of receiving an ARP request message transmitted from an external device by the switch, a step of matching between information transmitted in the ARP request message and a matching rule in the ARP response flow rule, If successful, the ARP response message is constructed according to the action set in the ARP response flow rule, the MAC address corresponding to the IP address requested in the received ARP request message is entered in the ARP response message, and then the ARP request packet Specifically, the step of transferring the ARP response message by using the input port.

  Referring to FIG. 2, the processing by the switch includes the following steps.

  Step 201: The switch receives the flow rule 1, that is, the ARP response flow rule supplied by the controller.

  Step 202: The switch receives an ARP request message transmitted from an external device.

  Step 203: The switch performs matching between the information conveyed in the ARP request message and the matching rule in the ARP response flow rule. If the matching is successful, step 204 is executed, or if matching If fails, the current process ends.

  Step 204: The switch constructs an ARP response message according to the action set in the ARP response flow rule, fills in the ARP response message with the MAC address corresponding to the requested IP address in the received ARP request message, and then the ARP request packet The ARP response message is transferred by using the input port.

According to the method for processing an address resolution protocol message provided in this embodiment of the present invention, an ARP request message transmitted from an external device can be processed, and an ARP response according to an ARP response flow rule. A message can be constructed and an ARP response message can be sent to the external device. Thus, an ARP mechanism based interaction with an external device is performed.
[Example 1-2]

  This embodiment describes the processing by the switch when the flow rule received by the switch includes the following flow rule 2, that is, the first ARP request flow rule.

  Flow rule 2: First ARP request flow rule

  In the first ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is an IP packet and the destination IP address is a preset IP address, where ARP The matching rule corresponding to the message is not limited to the above-mentioned information. Optionally, the matching rule corresponding to the ARP message further includes the following information that the mask has a mask value, and the action set corresponding to the ARP message is: A step of composing the first ARP request message, wherein the destination IP address in the first ARP request message is a preset IP address and the forwarding port number or all forwardings in which the forwarding port number is set Port number , Including the step.

  Optionally, in the first ARP request flow rule, the matching rule corresponding to the ARP message further includes information that the cause value of the matching is that there is no MAC address corresponding to the IP address.

  The first ARP request flow rule instructs the switch to construct an ARP request message in order to obtain the MAC address of the external device when the switch needs to send an ARP request message to the external device. Used for.

  Step 102 receives the user packet by the switch, and if it detects that there is no MAC address corresponding to the destination IP address of the packet, it matches the information about the user packet with the first ARP request flow rule. Matches with the rule, and if the match is successful, constructs the first ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the first ARP request message Is a pre-configured IP address and specifically includes sending a first ARP request message by using the configured forwarding port or all forwarding ports.

  Referring to FIG. 3, the processing by the switch includes the following steps.

  Step 301: The switch receives the flow rule 2 supplied by the controller, ie the first ARP request flow rule.

  Step 302: The switch receives a user packet transmitted from an external device.

  Step 303: The switch detects that there is no MAC address corresponding to the destination IP address of the packet in the user packet.

  Step 304: The switch matches between the information about the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, step 305 is executed or if the matching is If it fails, the current process ends.

  Optionally, in this step, in the first ARP request flow rule, if the matching rule corresponding to the ARP message further includes the following information that the mask has a first mask value, the switch causes the user to The step of matching between the information about the packet and the matching rule in the first ARP request flow rule is to determine whether the user packet is an IP packet, and if the result is a positive result, the user packet Determining whether the result of the predetermined operation on the destination IP address and the first mask value at the same as the result of the predetermined operation on the IP address and the first mask value preset in the matching rule; If they are the same, matching is successful. Specifically including the steps regarded as the.

  Step 305: The switch constructs an ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the ARP request message is a preset IP address in the matching rule and is set The ARP request message is transmitted by using the transfer port or all the transfer ports.

According to the method for processing an address resolution protocol message provided in this embodiment of the present invention, a user packet transmitted from an external device can be processed, and according to the first ARP request flow rule, An ARP request message can be constructed and the ARP request message can be sent to an external device. Thus, an ARP mechanism based interaction with an external device is performed.
[Example 1-3]

  This embodiment describes the processing by the switch when the flow rules received by the switch include both flow rule 2, ie, the first ARP request flow rule, and flow rule 3, ie, the second ARP request flow rule. To do.

  Flow rule 3: Second ARP request flow rule

  In the second ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is a MAC address corresponding to the IP address, and an action set corresponding to the ARP message: Includes transferring to the controller.

  Flow rule 4: Third ARP request flow rule

  In the third ARP request flow rule, the matching rule corresponding to the ARP message is that the cause value of matching is that there is no MAC address corresponding to the first IP address, and the packet type is IP packet. The destination IP address includes information that the destination IP address is the first IP address, and the action set corresponding to the ARP message is a step of constructing the second ARP request message, wherein the destination in the second ARP request message The IP address is the first IP address and the transfer port number is a set transfer port number or all transfer port numbers.

  Therefore, in the above-described embodiment, after matching is performed between the information on the user packet and the matching rule in the first ARP request flow rule, and the matching fails, the method is performed by the user received by the switch. Matching between the information about the packet and the matching rule in the second ARP request flow rule, and if the matching is successful, forward the user packet to the controller according to the action set in the second ARP request flow rule Receiving a third ARP request flow rule supplied by the controller; constructing a second ARP request message according to the third ARP request flow rule; Further comprising the step of transmitting the ARP request message.

  Referring to FIG. 4, the processing by the switch includes the following steps.

  Step 401: The switch receives a first ARP request flow rule and a second ARP request flow rule supplied by a controller. In this step, the specific description regarding the first ARP request flow rule is completely the same as the description regarding the flow rule in Example 1-2.

  Step 402: The switch receives a user packet transmitted from an external device.

  Step 403: The switch detects that there is no MAC address corresponding to the destination IP address of the packet in the user packet.

  Step 404: The switch matches between the information about the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, step 405 is executed or if the matching is If unsuccessful, step 406 is executed.

  Step 405: The switch constructs an ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the ARP message is a preset IP address and the configured forwarding port or Sending an ARP request message by using all forwarding ports, the current process ends.

  Step 406: The switch matches between the received information about the user packet and the matching rule in the second ARP request flow rule, and if the matching is successful, the switch sends the user packet to the second ARP request flow rule. Transfer to the controller according to the action set in

  The switch sends a flow table request to the controller according to the second ARP request flow rule, where the request communicates the destination IP address that needs to be currently requested, so that it needs to be currently requested, After finding the MAC address that corresponds to the destination IP address conveyed in the flow table request, the controller can use the third ARP request flow to ensure that the switch can construct the requested ARP request message. A rule is created and then a third ARP request flow rule is sent to the switch.

  Step 407: The switch receives the third ARP request flow rule supplied by the controller, configures the ARP request message according to the third ARP request flow rule, and transmits the ARP request message.

  Optionally, in Example 1-2 and Example 1-3, after the switch sends an ARP request message and then receives a data packet on the same connection, the switch follows the ARP encapsulation flow rules. In order to ensure that the corresponding MAC address can be directly encapsulated in the data packet, the switch may further create an ARP encapsulated flow rule. A specific implementation example is that a switch receives an ARP response message transmitted from an external device, configures an ARP encapsulation flow rule according to the ARP response message, and receives a data packet on a connection where a user packet is arranged. , Matching is performed between the information about the data packet and the matching rule in the ARP encapsulation flow rule, and if the matching is successful, the destination MAC address of the ARP response message is converted into the data packet according to the action set in the ARP encapsulation flow rule. A step of transmitting the encapsulated data packet and then encapsulating the data packet. In the ARP encapsulation flow rule, the matching rule corresponding to the ARP message is: Is a IP packet, and includes a step that includes information that the destination IP address is a destination IP address in the user packet, where the matching rule corresponding to the ARP message is not limited to the above information, and optionally ARP The matching rule corresponding to the message further includes the following information that the mask has a mask value, and the action set corresponding to the ARP message is a step of encapsulating the destination MAC address of the packet, Is the destination MAC address of the ARP response message, and the step of transferring the packet, wherein the transfer port number is the input port number of the ARP response message.

  According to the method for processing an address resolution protocol message provided in this embodiment of the present invention, a user packet transmitted from an external device can be processed, information about the user packet and the first ARP request. If the matching performed on the matching rule in the flow rule is not successful, matching can be performed on the information on the user packet and the matching rule in the second ARP request flow rule, and the user packet is sent to the controller. The ARP request message can be configured according to a third ARP request flow rule provided by the controller, and the ARP request message can be sent to the external device. Thus, an ARP mechanism based interaction with an external device is performed.

It should be noted that all forwarding port numbers in Example 1 of the present invention are specific port number identifiers and are used to represent all ports of the switch. The step of receiving a flow rule transmitted from the controller while responding to the ARP message by the switch is a step of receiving one flow rule transmission OpenFlow message transmitted from the controller by the switch, wherein one OpenFlow message is received. Is a step of receiving a plurality of flow rules, or a step of receiving a plurality of flow rule transmission OpenFlow messages transmitted from a controller by a switch, wherein the plurality of OpenFlow messages convey a plurality of flow rules. Steps are specifically included. Adding multiple flow rules to a single OpenFlow message by the controller can save network resources.
[Example 2]

  This embodiment provides a method for performing ARP message processing on the controller side. Referring to FIG. 5, the method includes the following steps.

  Step 501: The controller creates a flow rule corresponding to the ARP message, where each flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message.

  Step 502: The controller sends the created flow rule to the switch.

  In the process shown in FIG. 5, each created flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message, which is then successfully matched in accordance with the matching rule to which the switch corresponds. After that, in order to complete the processing of the ARP message, it can be guaranteed that the switch performs the processing according to the corresponding action set.

  In step 501, the controller can create flow rules corresponding to various ARP message processing according to the characteristics of the ARP, for example, creating any one or more of the flow rules in Example 1. it can. The flow rules include a flow rule 1: an ARP response flow rule, a flow rule 2: a first ARP request flow rule, a flow rule 3: a second ARP request flow rule, and a flow rule 4: a third ARP request flow rule. .

  Indeed, to ensure that the controller can create flow rule 1, the controller needs to obtain in advance various information about the switch to create matching rules and action sets that exist in the flow rule. Therefore, in the implementation method of the second embodiment, the method further includes the following steps before step 501. Step 500: The controller obtains a correspondence between the switch port of the switch and the IP address and MAC address of the port.

Multiple implementations of step 500, for example
Method 1: Obtaining the correspondence between the switch port of the switch and the IP address and MAC address of the switch directly by the controller according to a pre-configured static configuration or from a third party device; as well as,
Method 2: Obtain first information by a controller according to a pre-configured static configuration or from a third party device, where the first information is a switch identifier, a switch port identifier, and a switch port identifier Obtaining second information reported by the switch including a corresponding port IP address, wherein the second information includes a switch port identifier and a MAC address corresponding to the switch port identifier; Obtaining a correspondence relationship between the switch identifier, the switch port identifier, the IP address and the MAC address of the port according to the information of 2;
There is.

  Optionally, if the flow rule created by the controller includes flow rule 4, that is, the third ARP request flow rule, in the process shown in FIG. Is further included. Step 503: The controller receives a flow table request sent from the switch according to the second ARP request flow rule, where the request carries the destination IP address that needs to be currently requested. Step 504: If the controller finds a MAC address corresponding to the destination IP address conveyed in the flow table request that needs to be requested now, the controller can construct the requested ARP request message. In order to guarantee the above, a third ARP request flow rule is created, and then the third ARP request flow rule is transmitted to the switch.

  According to the method for processing an ARP message provided in this embodiment of the present invention, the controller can configure a flow rule according to the characteristics of the ARP message, and the configured flow rule is included in the ARP message. It includes a corresponding matching rule and an action set corresponding to the ARP message, so that the switch performs an ARP mechanism based interaction with the external device.

  It should be noted that all forwarding port numbers in embodiment 2 of the present invention are specific port number identifiers and are used to represent all ports of the switch. If the controller creates multiple flow rules in step 501, in step 502, the controller may add the created multiple flow rules to one OpenFlow message and send one OpenFlow message to the switch. Alternatively, the controller can add the created multiple flow rules to the multiple OpenFlow messages, respectively, and send the multiple OpenFlow messages to the switch. This method can save network resources.

For a simpler understanding of the process by which the controller and switch work together to complete the service, the following describes the joint process between the controller and the switch in four embodiments.
[Example 3]

  This example illustrates a complete joint process between the controller and the switch to implement that the switch constructs and sends an ARP response message based on flow rule 1, ie, the ARP response flow rule. To do.

  Furthermore, this embodiment is implemented in method 2 of step 500 shown in embodiment 2. Referring to FIG. 6, the joint process between the controller and the switch includes the following steps.

  Step 601: The controller obtains a correspondence between the switch port and the IP address.

  Here, the controller can obtain a correspondence between the switch port and the IP address by using a pre-configured static configuration, or a third-party system, such as an external gateway, or Correspondence between switch ports and IP addresses can be obtained from the operation and maintenance system.

In this step, the following information can be stored in the controller.
[Switch identifier Switch port number IP address]

  The switch identifier is used to identify the switch, and the switch port number is used to identify the switch port, where the switch identifier can be a switch ID number or a switch name, or the controller Can be any symbol that allows to be identified.

  Step 602: The controller obtains the correspondence between the switch port and the MAC address.

  Here, optionally, the correspondence between the switch port and the MAC address can be reported to the controller by the switch.

In this step, the following information can be stored in the controller.
[Switch identifier Switch port number MAC address]

  The switch identifier is used to identify the switch, and the switch port number is used to identify the switch port, where the switch identifier can be a switch ID number or a switch name, or the controller Can be any symbol that allows to be identified.

  Step 603: The controller obtains a correspondence relationship between the switch port, the IP address, and the MAC address.

In this step, the following information can be stored in the controller.
[Switch identifier Switch port number IP address MAC address]

  The controller acquires a correspondence relationship between the switch port, the IP address, and the MAC address according to the switch identifier and the switch port identifier.

  The switch identifier is used to identify the switch, and the switch port number is used to identify the switch port, where the switch identifier can be a switch ID number or a switch name, or the controller Can be any symbol that allows to be identified.

  Step 604: The controller configures the flow rule 1, that is, the ARP response flow rule, and supplies the flow rule to the switch.

  The ARP response flow rule is used to subsequently instruct the switch how to process the ARP response message, so that when an external device uses the switch as the destination recipient of the ARP request message. The switch can configure the ARP response message to send the MAC address of the switch to the external device.

  Specifically, in the ARP response flow rule, the matching rule corresponding to the ARP is not limited to the following, but 1) the ARP message type, and 2) the requested address is an IP address bound to the switch port. The action set corresponding to the ARP message is not limited to the following, but 1) the step of constructing the ARP response message, which is the MAC corresponding to the IP address requested in the received ARP request message The address is entered as the MAC address of the message, and 2) the step of transferring the ARP response message, wherein the transfer port number is the input port number of the ARP request packet.

The description execution method of the ARP response flow rule is as follows.
<Flow rule installation message>: = {Flow matching rule <Flow table processing operation>}, where the flow table matching rule is as follows:
OXM_OF_ETH_TYPE = 0x0806
OXM_OF_ARP_THA = IP address bound to the switch port The corresponding action set is as follows:
OFPAT_CONSTRUCT_ARP = XXXX (step of composing the ARP message, where the MAC address corresponding to the IP address requested in the ARP request message is entered as the destination MAC address in the message)
OFPAT_OUTPUT = XXXX (The included port number is the input port number of the ARP request packet.)

  In step 604, when flow rule 1 is supplied to the switch, in a scenario where the switch has a plurality of ports, for each port, one flow rule 1 corresponding to the port is created, and the controller Multiple flow rules 1 can be provided to the switch, where multiple rules are sent in one OpenFlow message or sent in multiple OpenFlow messages.

  Step 605: The switch receives and installs the ARP response flow rule.

  Step 606: The switch receives an ARP request message sent from an external device to request the MAC address of the switch port.

  Step 607: The switch performs matching between the information conveyed in the ARP request message and the matching rule in the ARP response flow rule. After the matching is successful, the switch configures the ARP response message according to the action set in the ARP response flow rule. Then, the MAC address corresponding to the IP address requested in the received ARP request message is entered in the ARP response message.

  Here, the ARP request message is an ARP message type message, and the requested address is an IP address bound to the switch port, and thus corresponds to the information conveyed in the ARP request message and the ARP message. At the same time, matching with a matching rule existing in the ARP response flow rule can be successful.

  Step 608: The switch sends an ARP response message to the external device according to the action set in the ARP response flow rule by using the input port of the ARP request packet.

According to the method for processing an address resolution protocol message provided in this embodiment of the present invention, an ARP request message transmitted from an external device can be processed, and an ARP response according to an ARP response flow rule. A message can be constructed and an ARP response message can be sent to the external device. Thus, an ARP mechanism based interaction with an external device is performed.
[Example 4]

  This embodiment still provides a complete joint process between the controller and the switch to implement that the switch constructs and sends an ARP response message based on flow rule 1, ie, the ARP response flow rule. explain.

  The difference from Example 3 is that this example is implemented in method 1 of step 500 shown in Example 2. Referring to FIG. 7, the joint process between the controller and the switch includes the following steps.

  Step 701: The controller obtains the correspondence between the switch port of the switch and the IP address and MAC address of the switch directly according to a preset static configuration or from a third party device.

  Here, the third party system may be an external gateway or an operation and maintenance system.

In this step, the following information can be stored in the controller.
[Switch identifier Switch port number IP address MAC address]

  In the configuration file, the switch identifier is used to identify the switch and the switch port number is used to identify the switch port, where the switch identifier in the configuration file can be an ID number or a switch name Or any symbol that allows the controller to identify the switch.

All descriptions from step 702 to step 706 are the same as all descriptions from step 604 to step 608.
[Example 5]

  This embodiment is a joint complete between the controller and the switch to implement that the switch constructs and sends an ARP request message based on flow rule 2, ie the first ARP request flow rule. Explain the process. Referring to FIG. 8, the process includes the following steps.

  Step 801: The controller instructs the switch to perform flow table matching in order to obtain a flow rule for ARP message configuration in a state where there is no MAC address corresponding to the IP address.

  This step is an optional step. The switch can be indicated by the controller by using a notification message.

  Indeed, this step can likewise be replaced as follows. The switch performs an initial configuration to perform flow table matching in order to obtain a flow rule for ARP message configuration in a state where there is no MAC address corresponding to the IP address.

  Step 802: The controller creates a first ARP request flow rule and supplies the flow rule to the switch.

  Here, in the first ARP request flow rule, the matching rule is 1) the cause value of matching is that there is no MAC address corresponding to the first IP address, and 2) the packet type is an IP packet. 3) the destination IP address is a pre-configured IP address, and 4) the mask includes having a first mask value, eg XXXX, where item 1) is an optional item and the action set is 1) a step of composing an ARP request message, wherein the destination IP address in the ARP request message is a preset IP address, and 2) a transfer port number or all transfer ports for which a transfer port number is set Including a number.

  In the action set 2), when the forwarding port number is a set forwarding port number, the specific forwarding port number can be determined according to the routing protocol, or when the forwarding port number is all forwarding port numbers In addition, the message is sent in the flood flood method.

  Step 803: The switch receives and installs the first ARP request flow rule.

  Step 804: When the switch receives the user packet, the switch detects that there is no MAC address corresponding to the destination IP address of the packet, and information on the user packet and the matching rule in the first ARP request flow rule And if the match is successful, construct an ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the message is a pre-configured IP address in the matching rule And then step 805 is performed or if the match fails, the current process ends.

  Optionally, in this step, successful matching means that the cause of the matching is that there is no MAC address corresponding to the IP address (optional), the packet type is an IP packet, and the destination IP address of the packet And the result of the set operation performed on the first mask value included in the first ARP request flow rule is the result of the destination IP and the first mask value included in the first ARP request flow rule. Is the result of the set operation performed.

  Step 805: The switch sends an ARP request message according to the action set in the first ARP request flow rule by using the configured forwarding port or all forwarding ports.

  Step 806: The switch receives an ARP response message transmitted from an external device.

  Step 807: The switch configures an ARP encapsulated flow rule according to the received ARP response message and according to the instructions in step 801.

  Here, the ARP encapsulation flow rule is that the switch does not need to send an ARP request message every time to acquire the MAC address of the external device after receiving the next data packet on the same connection, Used to ensure that the acquired corresponding MAC address can be directly encapsulated in the data packet according to the encapsulation flow rule.

  In the ARP encapsulation flow rule created by the switch, the matching rule corresponding to the ARP message is 1) the packet type is an IP packet, 2) the destination IP address is the destination IP address in the user packet, and 3) the mask Includes a third mask value, where item 3) is an optional item, and the action set corresponding to the ARP message is 1) encapsulating the destination MAC address of the packet, 2 A step in which the destination MAC address is the destination MAC address of the ARP response message, 3) a step of transferring the packet, and 4) a step in which the transfer port number is the input port number of the ARP response message.

The description implementation method of the ARP encapsulation flow rule is as follows.
<Flow rule installation message>: = {Flow matching rule <Flow table processing operation>}, where the flow table matching rule is as follows:
OXM_OF_ETH_TYPE = 0x0800
OXM_OF_ENCAP_MAC = Destination MAC address of the ARP response message The corresponding action set is as follows:
OFPAT_OUTPUT = XXXX (The included port number is the input port number of the ARP response message.)

Step 808: The next data packet arrives at the switch, the switch matches between the information about the data packet and the matching rule in the ARP encapsulation flow rule, and if the matching is successful, the received ARP response The action set in the ARP encapsulation flow rule is executed in order to encapsulate the destination MAC address of the message as the MAC address of the data packet and transfer the data packet from the input port of the ARP response message.
[Example 6]

  This embodiment is a joint completeness between the controller and the switch to implement that the switch constructs and sends an ARP request message based on flow rules 2 through 4, ie three ARP request flow rules. The process is described. Referring to FIG. 9, the process includes the following steps.

  All descriptions of step 901 and step 902 are the same as all descriptions of step 801 and step 802.

  Step 903: The controller creates a second ARP request flow rule and supplies the second ARP request flow rule to the switch.

  The second ARP request flow rule is then used when the switch cannot obtain the corresponding matching rule through matching from the first ARP request flow rule, and therefore cannot construct the ARP request message. Used to instruct the switch to request a new ARP request flow rule from the controller.

  Specifically, in the second ARP request flow rule, the matching rule corresponding to the ARP message includes 1) that the packet type is that there is no MAC address corresponding to the IP address, and corresponds to the ARP message. The action set to include 1) transferring to the controller.

  Step 904: The switch receives and installs the first ARP request flow rule and the second ARP request flow rule.

  Step 905: The switch receives the user packet transmitted from the external device, and detects that the MAC address corresponding to the destination IP address of the packet does not exist in the user packet.

  Step 906: The switch matches between the information about the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, step 907 is executed or if the matching is If unsuccessful, step 908 is executed.

  In the first ARP request flow rule, the matching rule corresponding to the ARP message is 1) the packet type is an IP packet, 2) the destination IP address is a preset IP address, and 3) the mask is the first Where the item 3) is an optional item and the action set corresponding to the ARP message is not limited to the following: 1) the step of constructing the ARP request message, The destination IP address in the message is a preset IP address, and 2) the transfer port number is a set transfer port number or all transfer port numbers.

  If the matching between the information about the user packet and the matching rule in the first ARP request flow rule is successful, the process is executed according to the corresponding action set.

  Step 907: The switch constructs an ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the message is a preset IP address and either the configured forwarding port or all ARP request message is transmitted by using the transfer port, and step 912 is executed.

  Step 908: The switch matches between the received information on the user packet and the matching rule in the second ARP request flow rule, and after the matching is successful, the switch sends the user packet in the second ARP request flow rule. Transfer to the controller according to the action set.

  Here, in the second ARP request flow rule, the matching rule corresponding to the ARP message includes 1) that the packet type is that the MAC address corresponding to the IP address does not exist, and the action corresponding to the ARP message The set includes 1) transferring to the controller.

  Step 909: The controller receives the user packet sent from the switch according to the second ARP request flow rule and uses the analysis to parse the destination IP address that needs to be currently requested and conveyed in the request To do.

  Step 910: If the MAC address corresponding to the destination IP address that currently needs to be found, the controller creates a third ARP request flow rule and then switches the third ARP request flow rule Send to.

  Step 911: The switch receives the third ARP request flow rule supplied by the controller, constructs an ARP request message according to the third ARP request flow rule, and transmits the ARP request message.

  All descriptions from step 912 to step 914 are the same as all descriptions from step 806 to step 808.

According to the method for processing an address resolution protocol message provided in this embodiment of the present invention, a user packet transmitted from an external device can be processed, information about the user packet and the first ARP request. If the matching performed on the matching rule in the flow rule is not successful, matching can be performed on the information on the user packet and the matching rule in the second ARP request flow rule, and the user packet is sent to the controller. The ARP request message can be configured according to a third ARP request flow rule provided by the controller, and the ARP request message can be sent to the external device. Thus, an ARP mechanism based interaction with an external device is performed.
[Example 7]

  This embodiment provides a controller. Referring to FIG. 10, the controller creates a flow rule corresponding to the ARP message and outputs the flow rule to the transmission unit 1002, where the flow rule is a matching rule corresponding to the ARP message and an action corresponding to the ARP message. A creation unit 1001 configured to include the set, and a transmission unit 1002 configured to send the received flow rule to the switch, the creation unit 1001 creating an ARP response flow rule Specifically configured. Optionally, the creation unit 1001 is specifically configured to create a first ARP request flow rule.

  The creation unit 1001 is further configured to create a second ARP request flow rule after creating the first ARP request flow rule.

  Optionally, the creation unit 1001 is further configured to receive a flow table request sent from the switch according to the second ARP request flow rule and to create a third ARP request flow rule, wherein the ARP response flow For the rules, the first ARP request flow rule, the second ARP request flow rule, and the third ARP request flow rule, reference is made to the method embodiments.

  The controller provided in this embodiment of the invention can create a flow rule and send the flow rule to the switch.

  Referring to FIG. 11, in the implementation method of this embodiment of the present invention, the controller obtains the correspondence between the switch port of the switch and the IP address and MAC address of the port and creates information about the correspondence. An information acquisition unit 1000 configured to transmit to the unit 1001 may further be included.

  In the other two implementations of this embodiment of the present invention, the sending unit 1002 receives a plurality of flow rules transmitted from the creation unit 1001, adds the plurality of flow rules to one OpenFlow message, Receiving a plurality of flow rules transmitted from the first transmission subunit configured to transmit an OpenFlow message to the switch or the creation unit 1001, and adding the plurality of flow rules to the plurality of OpenFlow messages, respectively; A second transmission subunit configured to transmit a plurality of OpenFlow messages to the switch is included.

  Contents such as information exchange and execution process of units and subunits in the apparatus are based on the same concept as the concept of the embodiment of the method of the present invention. Reference may be made to the description in the examples, and details are not described herein again.

The controller provided in this embodiment of the invention can create a flow rule, add multiple flow rules to a single OpenFlow message, and send a single OpenFlow message to the switch, which Can be saved.
[Example 8]

  This embodiment provides a switch. Referring to FIG. 12, the switch corresponds to an ARP message, receives a flow rule transmitted from the controller, and receives a reception unit 1201 configured to transmit the flow rule to the ARP processing unit 1202. ARP processing unit 1202 configured to compose an ARP message according to the flow rule and send the ARP message, wherein the flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. Including.

  Optionally, the ARP processing unit 1202 includes a first processing subunit, and the receiving unit 1201 receives the ARP request message transmitted from the external device, and transmits the ARP request message to the first processing subunit. The first processing subunit analyzes the ARP response flow rule included in the received flow rule, and the matching rule corresponding to the ARP message in the ARP response flow rule is: The message type is an ARP message and includes information that the requested address is an IP address bound to the switch port, and the action set corresponding to the ARP message is a step of constructing an ARP response message, wherein A medium access control (MAC) address of the response message is a MAC address corresponding to the requested IP address in the received ARP request message, and a step of transferring the ARP response message, wherein the transfer port number is ARP A step that is an input port number of the request packet, and after the ARP request message is received, matching is performed between the information conveyed in the ARP request message and the matching rule in the ARP response flow rule, If the match is successful, construct an ARP response message according to the action set in the ARP response flow rule, and be requested in the received ARP request message. Fill the MAC address corresponding to the IP address in the ARP response message, configured to forward the ARP response message by subsequently using an input port of the ARP request packet.

  The ARP processing unit 1202 includes a second processing subunit, and the receiving unit 1201 is further configured to receive the user packet and forward the user packet to the second processing subunit, the second processing subunit. Parses the first ARP request flow rule included in the received flow rule. Here, in the first ARP request flow rule, the matching rule corresponding to the ARP message is as follows, and the packet type is IP packet. And the action set corresponding to the ARP message is a step of constructing the first ARP request message, wherein the destination IP address is a preset IP address. Destination IP address in advance And includes a step in which the forwarding port number is a set forwarding port number or all forwarding port numbers, and after the user packet is received, corresponds to the destination IP address of the packet If it is detected that there is no MAC address to match, matching is performed between the information regarding the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, the first ARP request Construct a first ARP request message according to the action set in the flow rule, where the destination IP address in the first ARP request message is a pre-configured IP address and the configured forwarding port or all forwarding ports to use Configured to transmit a first ARP request message from.

  In the first ARP request flow rule, the matching rule corresponding to the ARP message further includes the following information that the mask has the first mask value, and accordingly, information on the user packet and the first ARP request: Matching with the matching rule in the flow rule includes determining whether the user packet is an IP packet and, if a positive result, a destination IP address and a first mask in the user packet. Determines whether the result of the given operation on the value is the same as the result of the given operation on the preset IP address and the first mask value, and if they are the same, the match was successful Specific steps.

  Optionally, the second processing subunit analyzes the second ARP request flow rule included in the flow rule, where the matching rule corresponding to the ARP message in the second ARP request flow rule is: , The packet type includes information that the MAC address corresponding to the IP address does not exist, the action set corresponding to the ARP message includes a step of forwarding to the controller, and according to the user packet, the first ARP Matching is performed on the matching rule in the request flow rule, and after matching fails, further matching is performed between the received information on the user packet and the matching rule in the second ARP request flow rule. If successful, forward the user packet to the controller according to the action set in the second ARP request flow rule, receive the third ARP request flow rule supplied by the controller, including the destination IP address in the user packet And further configuring the second ARP request message according to the third ARP request flow rule and transmitting the second ARP request message.

  The switch provided in this embodiment of the present invention can respond to the ARP message and receive the flow rule transmitted from the controller, where the flow rule is the matching rule corresponding to the ARP message and the ARP message. With the corresponding action set, the switch can construct the ARP message according to the received flow rules and send the ARP message. Thus, an ARP mechanism based interaction with an external device is performed.

  Referring to FIG. 13, in the exemplary method of implementing the switch in this embodiment, the switch may further include a configuration unit 1203, and the receiving unit 1201 receives the ARP response message transmitted from the external device. Further configured to send an ARP response message to the configuration unit 1203, receive a data packet on the connection where the user packet is located, and send the data packet to the second processing subunit, The second processing subunit is configured to configure the ARP encapsulated flow rule according to the received ARP response message, and the second processing subunit maps information about the received data packet and the ARP encapsulated flow rule configured by the configuration unit 1203. After matching is successful, the destination MAC address of the ARP response message is encapsulated into a data packet according to the action set in the ARP encapsulation flow rule, and then the encapsulated data packet is transmitted. Reference is now made to the method embodiment for the ARP encapsulation flow rules.

Contents such as information exchange and execution process of units and subunits in the apparatus are based on the same concept as the concept of the embodiment of the method of the present invention. Reference may be made to the description in the examples, and details are not described herein again.
[Example 9]

  This embodiment provides a switch. Referring to FIG. 14, the switch uses the structure of a general purpose computer system, where the computer system may specifically be a processor-based computer. As shown in FIG. 14, the switch includes at least one processor 1401, a communication bus 1402, a memory 1403, and at least one communication interface 1404.

  The processor 1401 may be a CPU, microprocessor, application specific integrated circuit ASIC, or one or more integrated circuits used to control the execution of programs in the solution of the present invention.

  Communication bus 1402 may include a channel for transmitting information between the aforementioned components. The communication interface 1404 can be any device such as a transceiver and is configured to communicate with another device or a communication network such as Ethernet, RAN or WLAN.

  The computer system includes one or more memories, which are read-only memory ROM, another type of static storage capable of storing static information and instructions, random access memory RAM, or information and instructions Can be another type of dynamic storage device that can store or an electrically erasable writable read only memory EEROM, read only optical disc CD-ROM or another optical disc storage device, a compact disc storage device (compact Convey the expected program code in the form of a disk, laser disk, optical disk, digital multipurpose disk, Blu-ray disk, or the like), magnetic disk storage medium or another magnetic disk storage device, or instruction or data structure Memory It is possible to be used in order, but may be any other medium that can be accessed by a computer, but the present invention is not limited thereto. These memories are connected to the processor by using a bus.

  The memory 1403 is configured to store application program code used to perform the solution in the present invention, where the application program code used to execute the solution in the present invention is stored in the memory. The execution of the application program code is controlled by the processor 1401. The processor 1401 is configured to execute an application program stored in the memory 1403.

  In a possible implementation, when the application program is executed by the processor 1401, the following functions are provided: the switch responds to the ARP message and receives the flow rule sent from the controller by the switch; Configuring the ARP message according to the received flow rule and sending the ARP message, wherein the flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. .

  Optionally, the flow rule includes an ARP response flow rule. In the ARP response flow rule, the matching rule corresponding to the ARP message is as follows, the message type is an ARP message, and the requested address is bound to the switch port. The action set corresponding to the ARP message includes information indicating that the IP address is an IP address, and is a step of constructing the ARP response message, which is requested in the ARP request message in which the medium access control (MAC) address of the ARP response message is received The step is a MAC address corresponding to the assigned IP address.

  Optionally, the switch constructs the ARP message according to the received flow rule, and the step of transmitting the ARP message is transmitted in the ARP request message by the step of receiving the ARP request message transmitted from the external device by the switch. A step of performing a matching between the received information and the matching rule in the ARP response flow rule, and if the matching is successful, constructs an ARP response message according to the action set in the ARP response flow rule, and receives the received ARP request message In the ARP response message, the MAC address corresponding to the requested IP address is entered, and then the input port of the ARP request packet is used. Ri and forwarding an ARP response message.

  Optionally, the flow rule includes a first ARP request flow rule. In the first ARP request flow rule, the matching rule corresponding to the ARP message is as follows, the packet type is an IP packet, and the destination IP address is The action set corresponding to the ARP message including information that the IP address is preset is a step of configuring the first ARP request message, and the destination IP address in the first ARP request message is preset. And a transfer port number for which a transfer port number is set or all transfer port numbers.

  Optionally, the switch constructs the ARP message according to the received flow rule, and the step of transmitting the ARP message includes the step of receiving the user packet by the switch and the MAC address corresponding to the destination IP address of the packet. If it does not exist, it matches between the information about the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, the action set in the first ARP request flow rule To configure a first ARP request message, where the destination IP address in the first ARP request message is a pre-configured IP address and the configured forwarding port or all forwarding ports The use and sending a first ARP request message.

  Optionally, in the first ARP request flow rule, the matching rule corresponding to the ARP message further includes the following information that the mask has a first mask value:

  Optionally, the step of matching between the information about the user packet and the matching rule in the first ARP request flow rule is a positive result if the step of determining whether the user packet is an IP packet. For example, determining whether the result of the predetermined operation on the destination IP address and the first mask value in the user packet is the same as the result of the predetermined operation on the preset IP address and the first mask value; If they are the same, specifically including the step of considering the matching as successful.

  Optionally, the flow rule includes a second ARP request flow rule. In the second ARP request flow rule, the matching rule corresponding to the ARP message is the following, and the packet type does not have a MAC address corresponding to the IP address. And the action set corresponding to the ARP message includes the step of forwarding to the controller, and matching is performed between the information about the user packet and the matching rule in the first ARP request flow rule, After matching fails, the method includes the step of matching between the received information about the user packet and the matching rule in the second ARP request flow rule by the switch, and if the matching is successful If so, forwarding the user packet to the controller according to the action set in the second ARP request flow rule, receiving a third ARP request flow rule supplied by the controller, and a third ARP request flow rule The second ARP request message is configured in accordance with the second ARP request message, and in the third ARP request flow rule, the matching rule corresponding to the ARP message is: Includes the information that the MAC address corresponding to the first IP address does not exist, the packet type is an IP packet, and the destination IP address is the first IP address, The action set corresponding to the RP message is a step of constructing the second ARP request message, and the destination IP address in the second ARP request message is the first IP address and the forwarding port number is set. Includes a transfer port number or all transfer port numbers.

  Optionally, after the step of sending the ARP request message, the method receives the ARP response message sent from the external device by the switch, configures the ARP encapsulation flow rule according to the ARP response message, and the user packet is A data packet on the arranged connection is received, matching is performed between the information about the data packet and the matching rule in the ARP encapsulation flow rule, and if the matching is successful, the destination MAC address of the ARP response message is set to ARP Encapsulating the data packet in accordance with the action set in the encapsulated flow rule, and then transmitting the encapsulated data packet. The matching rule corresponding to the page further includes the following step including the information that the packet type is an IP packet and the destination IP address is the destination IP address in the user packet, and an action set corresponding to the ARP message: Are steps of encapsulating the destination MAC address of the packet, where the destination MAC address is the destination MAC address of the ARP response message, and steps of forwarding the packet, where the transfer port number is the ARP response message And an input port number.

  Optionally, the step of receiving a flow rule transmitted from the controller while responding to the ARP message by the switch is a step of receiving one flow rule transmission OpenFlow message transmitted from the controller by the switch. Specifically, the step includes one OpenFlow message carrying a plurality of flow rules. In this embodiment, reference may be made to the foregoing method embodiment for a method for the switch to interact with another device when the application program is executed by the processor. Details are not described here again.

The switch provided in this embodiment of the present invention can respond to the ARP message and receive the flow rule transmitted from the controller, where the flow rule is the matching rule corresponding to the ARP message and the ARP message. With the corresponding action set, the switch can construct the ARP message according to the received flow rules and send the ARP message. Thus, an ARP mechanism based interaction with an external device is performed.
[Example 10]

  This embodiment provides a controller. Referring to FIG. 15, the controller uses the structure of a general purpose computer system, where the computer system may specifically be a processor-based computer. As shown in FIG. 15, the controller includes at least one processor 1501, a communication bus 1502, a memory 1503, and at least one communication interface 1504.

  The processor 1501 can be a CPU, microprocessor, application specific integrated circuit ASIC, or one or more integrated circuits used to control the execution of programs in the solution of the present invention.

  Communication bus 1502 may include a channel for transmitting information between the aforementioned components. Communication interface 1504 can be any device such as a transceiver and is configured to communicate with another device or a communication network such as Ethernet, RAN or WLAN.

  The computer system includes one or more memories, which are read-only memory ROM, another type of static storage capable of storing static information and instructions, random access memory RAM, or information and instructions Can be another type of dynamic storage device that can store or an electrically erasable writable read only memory EEROM, read only optical disc CD-ROM or another optical disc storage device, a compact disc storage device (compact Convey the expected program code in the form of a disk, laser disk, optical disk, digital multipurpose disk, Blu-ray disk, or the like), magnetic disk storage medium or another magnetic disk storage device, or instruction or data structure Memory It is possible to be used in order, but may be any other medium that can be accessed by a computer, but the present invention is not limited thereto. These memories are connected to the processor by using a bus.

  The memory 1503 is configured to store application program code used to perform the solution in the present invention, where the application program code used to execute the solution in the present invention is stored in the memory. The execution of the application program code is controlled by the processor 1501. The processor 1501 is configured to execute an application program stored in the memory 1503.

  In a possible implementation method, when the application program is executed by the processor 1401, the following function is the step of creating a flow rule corresponding to the ARP message by the controller, and each flow rule corresponds to the ARP message. Including a matching rule and an action set corresponding to the ARP message, and transmitting the created flow rule to the switch by the controller.

  Optionally, the flow rules include an ARP response flow rule, a first ARP request flow rule, and a second ARP request flow rule.

  Optionally, prior to the step of creating a flow rule corresponding to the ARP message by the controller, the implementation method obtains the correspondence between the switch port of the switch and the IP address and MAC address of the port by the controller. The method further includes a step.

Optionally, obtaining a correspondence between the switch port of the switch and the IP address and MAC address of the port comprises:
Method 1: Obtaining the correspondence between the switch port of the switch and the IP address and MAC address of the switch directly by the controller according to a pre-configured static configuration or from a third party device; as well as,
Method 2: Obtain first information by a controller according to a pre-configured static configuration or from a third party device, where the first information is a switch identifier, a switch port identifier, and a switch port identifier Obtaining second information reported by the switch including a corresponding port IP address, wherein the second information includes a switch port identifier and a MAC address corresponding to the switch port identifier; Obtaining a correspondence relationship between the switch identifier, the switch port identifier, the IP address and the MAC address of the port according to the information of 2;
including.

  Optionally, if the flow rule created by the controller includes flow rule 4, i.e., the third ARP request flow rule, after sending the created flow rule to the switch by the controller, the implementation method is Receiving a flow table request sent from the switch in accordance with a second ARP request flow rule, conveying a destination IP address to which the request needs to be currently requested, and if currently required And if the controller finds the MAC address corresponding to the destination IP address conveyed in the flow table request, to ensure that the switch can construct the requested ARP request message by the controller, 3 as well as create an ARP request flow rules, further comprising the step of sending to the switch then the 3 ARP request flow rules.

The controller provided in this embodiment of the invention can create a flow rule and send the flow rule to the switch.
[Example 11]

  This embodiment provides an SDN system that includes a controller having all the structures and functions in Embodiment 7 and a switch having all the structures and functions in Embodiment 8.

  Contents such as information exchange and execution process of units and subunits in the apparatus are based on the same concept as the concept of the embodiment of the method of the present invention. Reference may be made to the description in the examples, and details are not described herein again. The method, switch and controller for processing an ARP message provided in an embodiment of the present invention have at least the following beneficial effects.

  1. According to the method, switch, and controller for processing an ARP message provided in an embodiment of the present invention, the switch can receive the flow rule corresponding to the ARP message and transmitted from the controller. The rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message, and the switch can construct the ARP message according to the received flow rule and transmit the ARP message. Thus, an ARP mechanism based interaction with an external device is performed.

  2. Embodiments of the present invention can be implemented based on the existing flow table matching and processing mechanism of the OpenFlow protocol, without the need to add additional mechanisms for switches that implement ARP processing capabilities, and thus The switch is changed to a minimum and is easier to implement.

  Those skilled in the art can appreciate that each aspect of the present invention, or a possible implementation of each aspect, can be specifically implemented as a system, method or computer program product. Thus, aspects of the present invention, or possible implementations of each aspect, are referred to herein uniformly as “circuits”, “modules”, or “systems”, hardware-only embodiments, software-only embodiments. (Including firmware, resident software, etc.) or a form of embodiment with a combination of software and hardware may be used. Further, aspects of the invention, or possible implementations of each aspect, can take the form of a computer program product, wherein the computer program product is stored on a computer readable medium. Refers to that.

  The computer readable medium may be a computer readable signal medium or a computer readable storage medium. Computer readable storage media include, but are not limited to, random access memory (RAM), read only memory (ROM), erasable writable read only memory (EPROM or flash memory), optical fiber, and compact disk read. Includes electronic, magnetic, optical, electromagnetic, infrared, or semiconductive systems, devices, or apparatus, or any suitable combination thereof, such as a dedicated memory.

  A processor in a computer reads computer readable program code stored on a computer readable medium so that the processor can perform the specified functions and operations at each step or combination of steps in the flowchart. The device can be generated to perform the functions and operations specified in each block or combination of blocks in the block diagram.

  All computer readable program code may be executed on a user computer, or some may be executed on a user computer as a stand-alone software package, or some may be executed on a remote computer Some can be executed on the user's computer, or all code can be executed on the remote computer or server. It should also be noted that in some alternative implementation solutions, the functions specified in each step in the flowchart or each block in the block diagram may not occur in the order illustrated. It is. For example, two consecutive steps or blocks of two that are dependent on the relevant functions in the illustration may actually be executed substantially simultaneously, or these blocks may sometimes be in reverse order. Can be executed.

Obviously, those skilled in the art can make various modifications and changes to the present invention without departing from the spirit and scope of the present invention. The present invention is intended to cover these modifications and changes so long as they fall within the scope of protection defined by the appended claims and their equivalents.

The present invention relates to the field of communications technology, and in particular, to a method, switch and controller for processing Address Resolution Protocol (ARP ) messages.

The OpenFlow protocol is a typical technology in software-defined networking (SD N) . Network elements in the OpenFlow protocol include a controller (O F Controller) and a switch (O F Switch). The controller is responsible for determining the forwarding action for the service flow according to the packet characteristics and supplying the corresponding flow rules to the switch. The switch obtains and stores the flow rule and performs the corresponding action on the next packet that matches the flow rule, thereby performing packet forwarding or processing. The flow rule includes flow matching information and a processing action set executed in response thereto. The switch stores all flow matching information and action sets, installs the flow matching information and action sets in the corresponding flow table, and when a user packet arrives, the switch performs flow table matching, In order to process the user packet, a corresponding operation is executed according to the matching result of the flow table matching.

ARP is a link layer protocol and supports the IP address and medium access control (MAC ) address of a network device to correspond to the IP address and MAC address of another network device. An ARP request message carrying the destination IP address is sent to obtain an address resolution protocol response message carrying the destination MAC address, so that the network device acquires the MAC address of the communication peer.

In connection with the second possible implementation method of the first aspect or the third possible implementation method of the first aspect, in the fourth possible implementation method of the first aspect, the flow rule is the second In the second ARP request flow rule, the matching rule corresponding to the ARP message is that the packet type has no MAC address corresponding to the IP address as described below. And the action set corresponding to the ARP message includes forwarding the ARP message to the controller, and accordingly the matching on the user packet and the matching in the first ARP request flow rule. The match is made with the rule, and the match After the failure, the method includes the step of matching by the switch between the information about the received user packet and the matching rule in the second ARP request flow rule; If the match is successful, forwarding the user packet to the controller according to the action set in the second ARP request flow rule; receiving a third ARP request flow rule provided by the controller; , Further comprising: constructing a second ARP request message according to the third ARP request flow rule; and transmitting the second ARP request message, wherein the third ARP request flow rule In the matching rule corresponding to the ARP message, the cause value of matching is that the MAC address corresponding to the first IP address does not exist, the packet type is an IP packet, and the destination The IP address includes information that it is the first IP address, and the action set corresponding to the ARP message is a step of constructing a second ARP request message, wherein the destination in the second ARP request message A step in which the IP address is the first IP address and the transfer port number is a set transfer port number or all transfer port numbers.

In connection with the second possible implementation method of the second aspect or the third possible implementation method of the second aspect, in the fourth possible implementation method of the second aspect, the second processing sub The unit analyzes the second ARP request flow rule included in the flow rule, the matching is performed on the matching rule in the first ARP request flow rule according to the user packet, and the matching is performed. After failure, further matching is performed between the information about the received user packet and the matching rule in the second ARP request flow rule, and if the matching is successful, the user packet is The control according to the action set in the second ARP request flow rule And receiving the third ARP request flow rule supplied by the controller and including a second ARP request message according to the third ARP request flow rule. And further configured to transmit the second ARP request message. In the second ARP request flow rule, the matching rule corresponding to the ARP message is as follows, and the packet type corresponds to an IP address: The action set corresponding to the ARP message includes forwarding the ARP message to the controller.

In connection with the second possible implementation manner of the third aspect, in the third possible implementation manner of the third aspect, the creation unit is further configured to create a second ARP request flow rule In the second ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is that the MAC address corresponding to the IP address does not exist, and the ARP The action set corresponding to a message includes forwarding the ARP message to the controller.

To illustrate put that technical solutions in embodiments of the present invention more clearly, the following is briefly described the accompanying drawings required for describing the embodiments. Apparently, the accompanying drawings in the following description represent several embodiments of the present invention, and those skilled in the art can derive still other drawings from these accompanying drawings without creative efforts.

In the second ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is a MAC address corresponding to the IP address, and an action set corresponding to the ARP message: Includes forwarding an ARP message to the controller.

Specifically, in the ARP response flow rule, the matching rule corresponding to the ARP message is not limited to the following, but 1) the ARP message type, and 2) the requested address is an IP address bound to the switch port. The action set corresponding to the ARP message includes, but is not limited to, 1) the step of constructing the ARP response message, corresponding to the IP address requested in the received ARP request message A MAC address is entered as the MAC address of the message, and 2) a step of transferring the ARP response message, wherein the transfer port number is the input port number of the ARP request packet.

Optionally, in this step, successful matching means that the cause of the matching is that there is no MAC address corresponding to the IP address (optional), the packet type is an IP packet, and the destination IP address of the packet And the result of the set operation executed on the first mask value included in the first ARP request flow rule is the destination IP address and the first mask value included in the first ARP request flow rule. This means that it is the result of a set operation performed on the device.

Specifically, in the second ARP request flow rule, the matching rule corresponding to the ARP message includes 1) that the packet type is that there is no MAC address corresponding to the IP address, and corresponds to the ARP message. The action set to include 1) forwarding the ARP message to the controller.

Here, in the second ARP request flow rule, the matching rule corresponding to the ARP message includes 1) that the packet type is that the MAC address corresponding to the IP address does not exist, and the action corresponding to the ARP message The set includes 1) forwarding the ARP message to the controller.

Optionally, the second processing subunit analyzes the second ARP request flow rule included in the flow rule, where the matching rule corresponding to the ARP message in the second ARP request flow rule is: , The packet type includes information that there is no MAC address corresponding to the IP address, the action set corresponding to the ARP message includes the step of forwarding the ARP message to the controller, and according to the user packet Matching is performed on the matching rule in the first ARP request flow rule, and after matching fails, matching is performed between the received information on the user packet and the matching rule in the second ARP request flow rule. Further, if the match is successful, the user packet is forwarded to the controller according to the action set in the second ARP request flow rule and includes the destination IP address in the user packet and the third ARP request supplied by the controller It is further configured to receive the flow rule, configure the second ARP request message according to the third ARP request flow rule, and send the second ARP request message.

Optionally, the flow rule includes a second ARP request flow rule. In the second ARP request flow rule, the matching rule corresponding to the ARP message is the following, and the packet type does not have a MAC address corresponding to the IP address. And the action set corresponding to the ARP message includes the step of forwarding the ARP message to the controller, wherein a match is found between the information about the user packet and the matching rule in the first ARP request flow rule. Performed and after matching fails, the method includes the step of matching between the received information about the user packet and the matching rule in the second ARP request flow rule by the switch; and And if the matching is successful, forwarding the user packet to the controller according to the action set in the second ARP request flow rule; receiving a third ARP request flow rule supplied by the controller; The method further comprises: configuring a second ARP request message according to the ARP request flow rule; and transmitting the second ARP request message. In the third ARP request flow rule, the matching rule corresponding to the ARP message is: The following cause value of matching is that there is no MAC address corresponding to the first IP address, the packet type is an IP packet, and the destination IP address is the first IP address. The action set corresponding to the ARP message is a step of configuring the second ARP request message, and the destination IP address in the second ARP request message is the first IP address, and the forwarding port Including a step in which the number is a set transfer port number or all transfer port numbers.

In a possible implementation method, when the application program is executed by the processor 1501 , the following function, that is, a step of creating a flow rule corresponding to the ARP message by the controller, each flow rule corresponding to the ARP message Including a matching rule and an action set corresponding to the ARP message, and transmitting the created flow rule to the switch by the controller.

Clearly, those skilled in the art without departing from the scope of the present invention, can make various modifications and changes to the present invention. The present invention is intended to cover these modifications and changes so long as they fall within the scope of protection defined by the appended claims and their equivalents.

Claims (18)

A method for processing an Address Resolution Protocol (ARP) message, comprising:
A step of responding to the ARP message by the switch and receiving a flow rule transmitted from the controller;
The switch constructs an ARP message according to the received flow rule and transmits the ARP message, wherein the flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. A method for processing an address resolution protocol message comprising the steps of: In the ARP response flow rule, the flow rule includes an ARP response flow rule.
The matching rule corresponding to an ARP message includes the following information that the message type is an ARP message and the requested address is an IP address bound to a switch port:
The action set corresponding to the ARP message is a step of constructing an ARP response message, and a medium access control (MAC) address of the ARP response message corresponds to an IP address requested in the received ARP request message. A step that is a MAC address,
In response, the step of configuring the ARP message according to the received flow rule by the switch and transmitting the ARP message comprises:
Receiving an ARP request message transmitted from an external device by the switch;
Matching between the information conveyed in the ARP request message and the matching rule in the ARP response flow rule;
If the matching is successful, an ARP response message is constructed according to the action set in the ARP response flow rule, and a MAC address corresponding to the requested IP address in the received ARP request message is added to the ARP response message. The method for processing an address resolution protocol message according to claim 1, further comprising: filling and then forwarding the ARP response message by using an input port of an ARP request packet. The flow rule includes a first ARP request flow rule. In the first ARP request flow rule, the matching rule corresponding to the ARP message is the following packet type is an IP packet, and a destination IP address: Contains information that is a pre-configured IP address,
The action set corresponding to the ARP message constitutes a first ARP request message, the destination IP address in the first ARP request message is the preset IP address, and forwarding A port number is a set transfer port number or all transfer port numbers, including a step,
In response, the step of configuring the ARP message according to the received flow rule by the switch and transmitting the ARP message comprises:
Receiving a user packet by the switch;
If it is detected that there is no MAC address corresponding to the destination IP address of the packet, matching is performed between the information on the user packet and the matching rule in the first ARP request flow rule, and If the match is successful, configure a first ARP request message according to the action set in the first ARP request flow rule, where the destination IP address in the first ARP request message is the preset The address resolution protocol message of claim 1, further comprising: an IP address and specifically sending the first ARP request message by using a configured forwarding port or all forwarding ports. The Methods for. In the first ARP request flow rule, the matching rule corresponding to the ARP message further includes the following information that the mask has a first mask value:
Accordingly, the step of matching between the information about the user packet and the matching rule in the first ARP request flow rule comprises:
Determining whether the user packet is an IP packet;
If the user packet is an IP packet, the result of a predetermined operation on the destination IP address and the first mask value in the user packet is the preset IP address and the first mask value. The method of claim 3, further comprising: determining whether the result of the predetermined operation on the same is the same and, if they are the same, determining that the matching is successful. A method for handling protocol messages. The flow rule includes a second ARP request flow rule, wherein in the second ARP request flow rule:
The matching rule corresponding to the ARP message includes the following information that the packet type is that there is no MAC address corresponding to the IP address, and the action set corresponding to the ARP message is sent to the controller: Including a transfer step,
Accordingly, after the matching is performed between the information about the user packet and the matching rule in the first ARP request flow rule, the method fails to include:
Matching by the switch between the information about the received user packet and the matching rule in the second ARP request flow rule;
If the matching is successful, forwarding the user packet to the controller according to the action set in the second ARP request flow rule;
Receiving a third ARP request flow rule supplied by the controller;
Composing a second ARP request message in accordance with the third ARP request flow rule;
Transmitting the second ARP request message,
In the third ARP request flow rule:
In the matching rule corresponding to the ARP message, the following cause value of matching is that there is no MAC address corresponding to the first IP address, the packet type is an IP packet, and the destination IP address is Including information that it is the first IP address;
The action set corresponding to the ARP message constitutes a second ARP request message, and the destination IP address in the second ARP request message is the first IP address, and the forwarding port number 5. A method for processing an address resolution protocol message according to claim 3 or 4, comprising the step of: is a configured forwarding port number or all forwarding port numbers. After the step of sending the ARP request message, the method comprises:
The switch receives an ARP response message transmitted from an external device, configures an ARP encapsulation flow rule according to the ARP response message, receives a data packet on a connection where the user packet is arranged, and receives the data packet Information is matched with the matching rule in the ARP encapsulated flow rule, and if the matching is successful, the destination MAC address of the ARP response message is determined according to the action set in the ARP encapsulated flow rule. A step of encapsulating the packet, and then transmitting the encapsulated data packet, wherein the mapping corresponding to the ARP message is performed in the ARP encapsulation flow rule. Ngururu is below, along with the packet type is an IP packet, including information that the destination IP address is a destination IP address in the user packet, further comprising the step,
The action set corresponding to the ARP message encapsulates a destination MAC address of a packet, wherein the destination MAC address is the destination MAC address of the ARP response message; and forwarding the packet The method for processing an address resolution protocol message according to any one of claims 3 to 5, comprising a step, wherein a forwarding port number is an input port number of the ARP response message. . The step of responding to the ARP message by the switch and receiving the flow rule transmitted from the controller comprises:
2. The method of claim 1, further comprising: receiving one flow rule transmission OpenFlow message transmitted from the controller by the switch, wherein the one OpenFlow message conveys a plurality of flow rules. A method for processing an address resolution protocol message according to claim 5. A switch,
A receiving unit that corresponds to an Address Resolution Protocol (ARP) message and that is configured to receive a flow rule sent from a controller and send the flow rule to an ARP processing unit;
Configuring an ARP message according to the received flow rule and sending the ARP message, wherein the flow rule includes a matching rule corresponding to the ARP message and an action set corresponding to the ARP message. A switch comprising the ARP processing unit. The ARP processing unit comprises a first processing subunit;
The receiving unit is further configured to receive an ARP request message sent from an external device and send the ARP request message to the first processing subunit;
The first processing subunit analyzes an ARP response flow rule included in the received flow rule, and after the ARP request message is received, information transmitted in the ARP request message and the information Matching is performed with the matching rule in the ARP response flow rule, and if the matching is successful, an ARP response message is constructed according to the action set in the ARP response flow rule, and the received ARP request message In the ARP response message, the MAC address corresponding to the requested IP address is entered in the ARP response message, and then the ARP response message is used by using the input port of the ARP request packet. And to forward,
In the ARP response flow rule, the matching rule corresponding to the ARP message includes the following information that the message type is an ARP message and the requested address is an IP address bound to a switch port: The first processing subunit constitutes an ARP response message, wherein the medium access control (MAC) address of the ARP response message is a MAC address corresponding to the IP address requested in the received ARP request message. 9. The switch of claim 8, further configured to forward the ARP response message, wherein a forwarding port number is an input port number of the ARP request packet. The ARP processing unit comprises a second processing subunit;
The receiving unit is further configured to receive a user packet and forward the user packet to the second processing subunit;
The second processing subunit analyzes a first ARP request flow rule included in the received flow rule and corresponds to a destination IP address of the packet after the user packet is received. If it is detected that there is no MAC address to perform, matching is performed between the information regarding the user packet and the matching rule in the first ARP request flow rule, and if the matching is successful, Configuring a first ARP request message according to the action set in a first ARP request flow rule, wherein the destination IP address in the first ARP request message is a pre-configured IP address and set Transfer port or all transfer ports Is configured to transmit the first ARP request message by using a preparative,
In the first ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is an IP packet and the destination IP address is the preset IP address: The second processing subunit constitutes a first ARP request message, wherein the destination IP address in the first ARP request message is the preset IP address, and the forwarding port number is The switch of claim 8, further configured to be a configured forwarding port number or all forwarding port numbers. In the first ARP request flow rule, the matching rule corresponding to the ARP message further includes the following information that the mask has a first mask value:
The second processing subunit determines whether the user packet is an IP packet, and if the result is a positive result, a predetermined value for the destination IP address and the first mask value in the user packet Determine whether the result of the operation is the same as the result of the predetermined operation on the preset IP address and the first mask value, and if they are the same, the matching is successful The switch of claim 10, further configured to determine that a failure has occurred. The second processing subunit analyzes a second ARP request flow rule included in the flow rule, and according to the user packet, the matching is performed on the matching rule in the first ARP request flow rule. And after the matching fails, further matching is performed between the information about the received user packet and the matching rule in the second ARP request flow rule, and if the matching is successful For example, the user packet is forwarded to the controller according to the action set in the second ARP request flow rule, includes the destination IP address in the user packet, and a third ARP request supplied by the controller. Receive Est flow rules, configure the second ARP request message according to the third ARP request flow rules, it is further configured to transmit the second ARP request message,
In the second ARP request flow rule, the matching rule corresponding to the ARP message includes the following information that the packet type is a MAC address corresponding to the IP address, and the ARP message includes: 12. A switch according to claim 10 or claim 11, wherein the corresponding set of actions comprises a step of forwarding to the controller. The switch further comprises a constituent unit;
The receiving unit receives an ARP response message transmitted from an external device, transmits the ARP response message to the constituent unit, receives a data packet on a connection where the user packet is arranged, and receives the data packet. Is further configured to transmit to the second processing subunit,
The configuration unit is configured to configure an ARP encapsulated flow rule according to the received ARP response message;
After the second processing subunit performs matching between the information about the received data packet and the matching rule in the ARP encapsulation flow rule configured by the constituent unit, and after the matching is successful , Encapsulating the destination MAC address of the ARP response message into the data packet according to the action set in the ARP encapsulation flow rule, and then transmitting the encapsulated data packet, where in the ARP encapsulation flow rule: The matching rule corresponding to the ARP message includes the following information that the packet type is an IP packet and the destination IP address is a destination IP address in the user packet: Is configured,
The action set corresponding to the ARP message encapsulates a destination MAC address of a packet, wherein the destination MAC address is the destination MAC address of the ARP response message; and forwarding the packet The switch according to any one of claims 10 to 12, further comprising: a step, wherein a forwarding port number is an input port number of the ARP response message. A controller,
A flow rule corresponding to an address resolution protocol (ARP) message is created and the flow rule is output to a transmission unit, where the flow rule is a matching rule corresponding to the ARP message and an action set corresponding to the ARP message A creation unit configured to include, and
A controller comprising: the transmission unit configured to transmit the received flow rule to a switch. The creation unit is specifically configured to create an ARP response flow rule, and in the ARP response flow rule:
The matching rule corresponding to the ARP message includes the following information that the message type is an ARP message and the requested address is an IP address bound to a switch port:
The action set corresponding to the ARP message is a step of constructing an ARP response message, and a medium access control (MAC) address of the ARP response message corresponds to an IP address requested in the received ARP request message. The controller according to claim 14, comprising: a MAC address; and a step of transferring the ARP response message, wherein the transfer port number is an input port number of an ARP request packet. The creation unit is specifically configured to create a first ARP request flow rule, wherein in the first ARP request flow rule:
The matching rule corresponding to the ARP message includes the following information that the packet type is an IP packet and the destination IP address is a preset IP address:
The action set corresponding to the ARP message constitutes a first ARP request message, the destination IP address in the first ARP request message is the preset IP address, and forwarding The controller according to claim 14, comprising a step in which the port number is a set transfer port number or all transfer port numbers. The creating unit is further configured to create a second ARP request flow rule, wherein in the second ARP request flow rule:
The matching rule corresponding to the ARP message includes the following information that the packet type is that there is no MAC address corresponding to the IP address:
The controller of claim 16, wherein the action set corresponding to the ARP message includes forwarding to the controller. The creation unit is further configured to receive a flow table request sent from the switch according to the second ARP request flow rule and to create a third ARP request flow rule, the third ARP request In the flow rule,
In the matching rule corresponding to the ARP message, the following cause value of matching is that there is no MAC address corresponding to the first IP address, the packet type is an IP packet, and the destination IP address is Including information that it is the first IP address;
The action set corresponding to the ARP message constitutes a second ARP request message, and the destination IP address in the second ARP request message is the first IP address, and the forwarding port number The controller according to claim 17, further comprising: a transfer port number that is set or all transfer port numbers.

Images